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METHOD FOR PROVIDING A SECURE FIG. 1 shows a block diagram of an embodiment of the 

COMMUNICATION BETWEEN TWO decoder according to the present invention. 

DEVICES AND APPLICATION OF THIS FIG. 2 shows a sequence of steps of an embodiment of 

METHOD the method of the invention. 

^ , . „ . 5 Referring to FIG. 1 there is shown in a very schemalical 

rnie present^^h^atio^^^ benefit of PCT patent ^^^^^r a block diagram of a decoder for a pay TV system, 

application PCT^P97/01557, wtnch has a fi^ng date of therein digital information signals are scrambled using a 

"Se'p'Ln^^^^^^ example In this embodim^^^ comprises a 

a secure communication between two devices, m particular ^51°^!^'^°'^'' demultiplexer 2 and a decompression umt 

between devices used in a pay TV system, ^ ^^^^""^^^ ^"^^^ comprises a condiUonal access mod- 

In a pay TV system each subscriber generally has a °^ ^ ^^^^^ ^^^^ ^ ^^^^^ mserted mto 

decoder for descrambhng the source component signal, a connection slot of the conditional access module 4. Further 

wherein said decoder comprises a conditional access module decoder is provided with a microprocessor 6 for con- 

and a smart card for decrypting entitlement control messages figuration and control purposes. 

and entitlement management messages. In order to prevent Th^ conditional access module 4 is provided with a 

unauthorized operation of the decoder for descrambling a descrambler unit 7 and a microprocessor 8 having a memory 

source component signal it is important to prevent switching 9. The smart card 5 comprises a microprocessor 10 having 

between an authorized and an unauthorized smart card for a memory 11. 

example. 20 As the operation of the above-mentioned parts of the 

The invention aims to provide a method of the above- decoder is not a part of the present invention, this operation 

mentioned type wherein the communication between two will not be described in detail. Typically, the signal received 

devices, such as the control access module and the smart by the demodulator 1 is a modulated data stream between 

card or the decoder and the conditional access module, is 950 MHz and 2050 MHz. The output of the demodulator 1 
arranged in such a manner that switching between autho- 25 is a scrambled digital data stream which is provided to the 

nzcd and unauthorized devices is not possible . cAM 4 and the descrambler 7 will be allowed to descramble 

According to the invention a method is provided scrambled data stream assuming that an authorized 

wherem a first device generals a random key (Ci) and ^^^^ ^^^^ ^^^^ ^^^^ subscriber is entitled to 

transiers said key to a second device in a first message - ,u tuj uijj** -j 1 

, , - , 1 . • -J J J • receive the program. The descrambled data stream IS demul- 

encrypted using a public key, wherem said second device , . , j 1 j j 1 . 

decrypts the fi^t encrypted message by means of a corre- Mexed by the demultiplexer 2 and decompressed and 

sponding secret key to obtain said random key (Ci), wherein ^onv^rted mto the origmal analogue audio and video signal 

said random key is used to encrypt and decrypt further decompression umt 3. 

transmissions between said devices. ^ P^y ^ system the control word required for 
According to the invention this method can be applied in descrambling, is transferred to the subscribers in so-called 
a decoder for a pay TV system, wherein said decoder 35 entitlement control messages containing the control word 
comprises a conditional access module and a smart card, encrypted using a service key. This service key is down- 
wherein said method is applied to provide a secure commu- loaded in the memory 11 of the smart card 5 by means of a 
nication between the control access module and the smart so-called entitlement management message for example, 
card or between the decoder and the conditional access During operation the CAM 4 transfers the entitlement con- 
module. 40 trol messages towards the microprocessor 10 of the smart 
The invention further provides a decoder for a pay TV card 5 so that the microprocessor 10 can process the entitle- 
system, comprising a conditional access module and a smart ment control message and extract the control word. There- 
card, said conditional access module comprising means for after the smart card 5 returns the decrypted control word 
generating a random key (Ci), means for encrypting said key towards the CAM 4 so that the descrambler 7 is allowed to 
m a first encrypted message using a public key encryption 45 descramble the digital data stream received from the 
method, means for transfering said first encrypted message demodulator 1 

to the smart card, said smart card comprising means for ^^^^ p^^^^^^ ^ unauthorized smart card 

n^-r^^'r"! '""'T^ t 5 in combination with the CAM 4 it is important to provide 

obtain said random key, means for encrypting transmissions . ^ . , ,1. r^Axt a j *u 

to the conditional access module under said random key, ^ ^^^^^J^ commumcation between the CAM 4 and the smart 

said conditional access module having means to decrypt said card 5 A^^ording to the present mvenUon the following 

transmissions received from the smart card. ^^^^^ ^ *° provide such a secure communication. The 

In a further embodiment of the invention, said decoder ^^^^ this method are shown in FIG. 2. When a smart card 

comprises a conditional access module and a smart card, ^ inserted into the decoder, the microprocessor 8 of the 

wherein said decoder comprises means for generating a CAM 4 will generate two random numbers Ci and A. The 
random key (Ci), means for encrypting said key in a first ss microprocessor 8 will encrypt in a first message the random 

encrypted message using a public key encryption method, numbers Ci and Aunder a public key of the CAM 4. The thus 

means for transfering said first encrypted message to the obtained first message is transferred to the smart card 5 and 

conditional access module, said conditional access module the microprocessor 10 will decrypt this first message using 

comprising means for receiving and decrypting said first the secret key of the CAM 4. Thereafter the microprocessor 
encrypted message to obtain said random key, means for 60 10 will return a second message to the CAM 4, said second 

encrypting transmissions to the decoder under said random message being the random number A encrypted under the 

key, said decoder having means to decrypt said transmis- number Ci used as encryption key. The microprocessor 8 of 

sions received from the conditional access module. the CAM 4 decrypts this second message and verifies 

The invention will be further explained by reference to whether the random number A is correct. Assuming that the 
the drawings in which an embodiment of the method of the 65 random number A is indeed correct, so that it may be 

invention is explained as applied in a decoder for a pay TV assumed that the inserted smart card 5 is an authorized smart 

system. card, the CAM 4 will then forward entiUement control 
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messages containing the encrypted control word to the smart 5. The method of claim 1, wherein said method provides 

card 5 which will process the entitlement control message a secure communication between the decoder and the con- 

and extract the control word in a conventional manner. ditional access module. 

However, in the return message towards the CAM 4, the 6, The method of claim 2, wherein said method provides 

smart card will forward the extracted control word encrypted 5 a secure communication between the conditional access 

under the key Ci and these encrypted control words are module and the smart card. 

decrypted by the microprocessor 8 using the same key Ci. As 7 ^he method of claim 3, wherein said method provides 

soon as one tries to replace the inserted smart card 5 by an ^ communication between the conditional access 

other smart card for example by switchmg &om the auto- ^^^^^^ ^^^^ ^^^^ 

nzed smart card 5 to an unauthonzed smart card the CAM 10 ^ ^^^^^ ^^^^ ^ ^^^^^.^ ^^^^^^ 

4 will immediately establish such change as the key Ci will . . ; , . 

* w 1™ 4 J * *u r/Ax>r -ii a secure communication bctween the dccoder and the con- 

not be known to the new smart card, so that the CAM will , 

1 u i_i i J i_i ii. i ditional access module, 

no longer be able to descramble the return messages con- ^ " . . ^ , . ^ 

taining the control word. Thereby the descrambler unit 7 wiU ^* "^^^^""^ ^^^^"^ ^> ^^^^ P^^^^^^es 

be disabled 15 * secure communication between the decoder and the con- 

The method described can be used in the same manner ditional access module, 

for providing a secure communication between the CAM 4 10. A decoder for a pay TV system, comprising a condi- 

and the decoder, wherein the same protocol as shown in FIG. tional access module and a smart card, said conditional 

2 is followed. access module comprising means for generating a random 

In summary it will be understood that if a new CAM 4 20 key (Ci), means for encrypting said key in a first encrypted 
is connected to the other decoder parts, the microprocessor message using a public key encryption method, means for 
6 of the decoder will generate the two random numbers Ci transferring said tirst encrypted message to the smart card, 
and A and as soon as the microprocessor 6 has decrypted the said smart card comprising means for receiving and decrypt- 
second message received from the microprocessor 8 of the ing said first encrypted message to obtain said random key, 
CAM 4, and has verified that the random number A is 25 means for encrypting transmissions to the conditional access 
correct, the key Ci will be used in all transmissions between module under said random key, said conditional access 
the CAM 4 and the microprocessor 6. module having means to encrypt said transmissions received 

The invention is not restricted to the above-described from the smart card 

embodiments which can be varied in a number of ways ^ ^ ^^^^^^ according to claim 10, wherein said smart 

withm the scope of the clauns. As an example for a fiirther 30 comprises means for returning said random key to the 

embodiment the CAM (i.e. the descrambler) may be part of j-*- i j i • a * j 

^Ljjrr-jj u .11.. . conditional access module in a second encrypted message 

the decoder. The decoder would now challenge the smart ,u ^- 

J, *u . •* 1** • • with an authentication, 

card to authenticate Itself to obtain a secure communication * , , 

between the smart card and the decoder. ^ ^^'^'^ accordmg to claim U, wherein said gen- 

What is claimed is* 35 ^^^^S means of the conditional access module further 

1. A method for 'providing a secure communication generates a random number which is included in said first 
between two devices in a decoder for a pay TV system, encrypted message, wherein the smart card is adapted to use 
wherein said decoder comprises a conditional access module ^aid random number as authentication in the second 
(CAM) and a smart card (SC), wherein a first device encrypted message. 

generates a random key (Ci) and transfers said key to a 40 ^ decoder for a pay TV system, comprising a condi- 

second device in a first message encrypted using a pubHc ^^^^^ module and a smart card, wherein said decoder 

key, wherein said second device decrypts the first encrypted comprises means for generating a random key (Q), nieans 

message by means of a corresponding secret key to obtain encrypting said key in a first encrypted message using a 

said random key of a corresponding secret key to obtain said P^^^^^ encryption method, means for transferring said 

random key (Ci), wherein after decrypting said encrypted 45 encrypted message to the conditional access module, 

message, said second device first returns said random key conditional access module comprising means for 

(Ci) in a second encrypted message with an authentication to receiving and decrypting said first encrypted message to 

said first device, wherein said random key (Ci) is used to ^^^^^^ random key, means for encrypting transmissions 

encrypt and decrypt transmissions from said second to said decoder under said random key, said decoder having 

first device. 50 roeans to decrypt said transmissions received from the 

2. The method according to claim 1, wherein for provid- conditional access module. 

ing said authentication said first device further generates a decoder according to claim 13, wherein said 

random number (A) and transfers this random number (A) conditional access module comprises means for remrning 

together with said random key (Ci) in said first encrypted said random key to the decoder in a second encrypted 

message to the second device, wherein the second device 55 message with an authentication. 

uses said random number (A) for authentication in the decoder according to claim 14, wherein said 

second encrypted message. generating means of the decoder further generates a random 

3. The method according to claim 2, wherein said second number which is included in said first encrypted message, 
device encrypts said random number (A) under said random wherein the conditional access module is adapted to use said 
key (Ci) to obtain said second encrypted message. 60 ^^^^^^ number as authentication in the second encrypted 

4. The method of claim 1, wherein said method provides message, 
a secure communication between the conditional access 

module and the smart card. * ♦ * ♦ « 
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